CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Date-And-Time Project: Security Vulnerabilities

CVE-2020-26289

date-and-time is an npm package for manipulating date and time. In date-and-time before version 0.14.2, there a regular expression involved in parsing which can be exploited to to cause a denial of service. This is fixed in version 0.14.2.

CVSS Score

7.5

EPSS Score

0.005

Published

2020-12-28

Page 1

Vulnerabilities

Vulnerable Software

Date-And-Time Project: Security Vulnerabilities

Products

Pricing

Contact Us